Overview

overview

10

Static

static

3

eda32fa850...cs.exe

windows7-x64

10

eda32fa850...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eda32fa8507878b463aa129e1758e4f0_NeikiAnalytics.exe

  • Size

    88KB

  • Sample

    240518-t4dpcacf5w

  • MD5

    eda32fa8507878b463aa129e1758e4f0

  • SHA1

    e132422db030d64fad1c34077a2deb6770ce249e

  • SHA256

    37d759a04d0c876cb85e6822c0cefb7a0255aab825fda5472805badc503eb6ac

  • SHA512

    8c66d517acd005d55c81953fe523ad3087fab9ea0d375163473740e7a45481c8f5b71b3b34d3ec7ace741c15ebc151e68ad848efc37d357f14e7a89cdfe6272b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLU1grORPfr0k890Ce:ymb3NkkiQ3mdBjFoLk8Pk890Ce

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      eda32fa8507878b463aa129e1758e4f0_NeikiAnalytics.exe

    • Size

      88KB

    • MD5

      eda32fa8507878b463aa129e1758e4f0

    • SHA1

      e132422db030d64fad1c34077a2deb6770ce249e

    • SHA256

      37d759a04d0c876cb85e6822c0cefb7a0255aab825fda5472805badc503eb6ac

    • SHA512

      8c66d517acd005d55c81953fe523ad3087fab9ea0d375163473740e7a45481c8f5b71b3b34d3ec7ace741c15ebc151e68ad848efc37d357f14e7a89cdfe6272b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLU1grORPfr0k890Ce:ymb3NkkiQ3mdBjFoLk8Pk890Ce

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks